Formal models for automotive systems and vehicular networks: Benefits and challenges

2016 IEEE Vehicular Networking Conference (VNC) Pub Date : 2016-12-01 DOI:10.1109/VNC.2016.7835940

Eduardo dos Santos, D. Schoop, A. Simpson

{"title":"Formal models for automotive systems and vehicular networks: Benefits and challenges","authors":"Eduardo dos Santos, D. Schoop, A. Simpson","doi":"10.1109/VNC.2016.7835940","DOIUrl":null,"url":null,"abstract":"Formal models have seen widespread use in the development of safety- and security-critical systems — primarily as a means of providing increased assurance. In particular, formal models of threats have the potential to give rise to numerous benefits: they can help in the understanding of vulnerabilities (and the communication of such); they also provide a means by which these vulnerabilities can be reasoned about. We give consideration to how formal models of threats might be beneficial in the development of modern automotive systems and vehicular networks, which are increasingly interconnected. To achieve this we present a formal threat model of an idealised system. We use Predicate/Transition (PrT) Nets, a graphical mathematical formalism, to represent threats and plausible attacks. In addition to understanding and analysis, the approach also has the potential to provide benefits to the design and testing of vehicles' distributed IT systems — thus contributing to an improved sense of security, privacy and safety. To this end, we give consideration to the challenges that lie ahead in terms of adopting such an approach.","PeriodicalId":352428,"journal":{"name":"2016 IEEE Vehicular Networking Conference (VNC)","volume":"68 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"8","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 IEEE Vehicular Networking Conference (VNC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/VNC.2016.7835940","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 8

Abstract

Formal models have seen widespread use in the development of safety- and security-critical systems — primarily as a means of providing increased assurance. In particular, formal models of threats have the potential to give rise to numerous benefits: they can help in the understanding of vulnerabilities (and the communication of such); they also provide a means by which these vulnerabilities can be reasoned about. We give consideration to how formal models of threats might be beneficial in the development of modern automotive systems and vehicular networks, which are increasingly interconnected. To achieve this we present a formal threat model of an idealised system. We use Predicate/Transition (PrT) Nets, a graphical mathematical formalism, to represent threats and plausible attacks. In addition to understanding and analysis, the approach also has the potential to provide benefits to the design and testing of vehicles' distributed IT systems — thus contributing to an improved sense of security, privacy and safety. To this end, we give consideration to the challenges that lie ahead in terms of adopting such an approach.

查看原文本刊更多论文

汽车系统和车辆网络的正式模型:好处和挑战

正式模型在安全和安全关键系统的开发中得到了广泛的应用，主要是作为一种提供更多保证的手段。特别是，威胁的正式模型有可能产生许多好处:它们可以帮助理解漏洞(以及此类交流);它们还提供了一种对这些漏洞进行推理的方法。我们考虑了威胁的正式模型如何在现代汽车系统和车辆网络的发展中有益，这些系统和车辆网络日益相互关联。为了实现这一点，我们提出了一个理想系统的正式威胁模型。我们使用谓词/转换(PrT)网络，一种图形化的数学形式，来表示威胁和可信的攻击。除了理解和分析之外，该方法还有可能为车辆分布式IT系统的设计和测试提供好处，从而有助于提高安全性、隐私性和安全性。为此目的，我们考虑到在采取这种办法方面所面临的挑战。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2016 IEEE Vehicular Networking Conference (VNC)

自引率

0.00%

发文量